Work together to provide a simple standardized approach to cybersecurity verification and validation.

A 501(c)6 nonprofit, StateRAMP (dba GovRAMP) levels the playing field for private-sector organizations serving the public sector and reduces hassles for public institutions with strict cybersecurity requirements.

Government
Service Providers

Governments Can Procure and Secure More Efficiently and Confidently with GovRAMP

Diverse government standards and significant data sprawl through cloud service providers complicate today’s security environment, leaving governments less secure than ever amidst increasing cyber threats. GovRAMP lets governments trust but verify service provider products, making procurement more efficient and data more secure.

Learn More

Service Providers Can Improve Security and Simplify Compliance with GovRAMP

Meeting the complex security standards and supplying (and resupplying) documentation required by various government partners can be confusing, time consuming, and costly. GovRAMP offers transferable credentials through standardized cybersecurity verification, allowing providers to verify once and serve many.

Learn More

Progressing Snapshot Program Updates

Effective January 1, 2026

Beginning January 1, 2026, the GovRAMP Progressing Snapshot Program will introduce new requirements to ensure every product on the Progressing Product List is actively advancing toward a verified status.

Read More

Learn, Connect, and Engage

September 19 at 2:00 pm - 3:00 pm

GovRAMP Working Group – Session 5

Join us for the fifth session of the GovRAMP Working Group, a collaborative forum designed to engage public and private sector members in shaping the future of secure cloud services.

Join us for the fifth session of the GovRAMP Working Group, a collaborative forum designed to engage public and private sector members in shaping the future of secure cloud services. This interactive session brings together service providers, assessors, government officials, and higher education stakeholders to share insights, raise challenges, and co-develop solutions that enhance the GovRAMP program’s impact.

Why Attend:

  • Collaborate directly with GovRAMP experts and fellow members
  • Contribute ideas to improve the authorization process
  • Learn about implementation best practices and operational pain points
  • Stay informed on evolving compliance strategies and program developments

The Goal:
This Working Group aims to surface actionable recommendations to streamline authorizations, strengthen trust, and promote innovation across the ecosystem of secure government cloud services.

Register Now:
Click here to register

Missed the Previous Sessions?
View all previous sessions.

Learn More
September 24 at 11:00 am - 12:00 pm

Understanding GovRAMP: A Guide for Indiana Vendors

The State of Indiana, under an executive order from Governor Mike Braun, is moving to a RAMP policy taking effect October 14, 2025. Join GovRAMP and the Indiana Office of Technology for a joint webinar.

The State of Indiana, under an executive order from Governor Mike Braun, is moving to a RAMP policy taking effect October 14, 2025. Join GovRAMP and the Indiana Office of Technology for a joint webinar to learn what this policy means for vendors, who it applies to, and how to get started.

We’ll also cover the benefits of GovRAMP authorization, the state’s transition period, and what to expect moving forward.

Key Takeaways:

  • What GovRAMP is and why Indiana is adopting it into their RAMP program
  • Who the new policy applies to
  • The transition period that Indiana is offering
  • How to get started

The session will close with a live Q&A with the GovRAMP and Indiana IOT teams.

Learn More
October 2 - October 3

2025 GovRAMP Cyber Summit with presenting sponsor Carahsoft

Join us for the 2nd annual GovRAMP Cyber Summit with presenting sponsor Carahsoft, taking place October 2-3, 2025 at the J.W. Marriott Chicago. More details to come soon!

Join us for the 2nd annual GovRAMP Cyber Summit with presenting sponsor Carahsoft, taking place October 2-3, 2025 at the J.W. Marriott Chicago. More details to come soon!

Learn More
View All Events

Rev. 5 Updates – StateRAMP Office Hours

StateRAMP staff discusses the NIST 800-53 Rev 5 updates. This special Office Hours was an open forum for Service Providers, 3PAOs, State and local governments, and higher education institutions to ask questions to StateRAMP staff.

Rev. 5 Updates – StateRAMP Office Hours

This panel discussion explores the landscape of cybersecurity and third-party risk management.

Understanding StateRAMP’s Rev 5 Baseline Controls

Explore the latest updates to the StateRAMP Baseline Controls, incorporating NIST 800-53 Rev. 5. Learn how StateRAMP will align with the most current and comprehensive security guidelines for cloud cybersecurity.

Browse Our Video Library

Who We Are

As a 501(c)6 nonprofit, our mission is to promote cybersecurity best practices through education and policy development and improve the cyber posture of public institutions and the citizens they serve. We support the shared interests of state and local government entities, their prospective cloud service provider partners, and accredited third-party assessment organizations (3PAOs).

Learn About GovRAMP